Challenges of tomorrow’s data storage integrity in automotive and IOT projects
Historically, automotive control units were literally read only. Functionality has been defined by the developer at the very beginning, with no major changes over lifetime. The number of write cycles for flash memory was a no-worry. Now, systems have become much more complex with ECUs consolidated into domain controllers and hosting multiple functions on one SOC.
The introduction of Android makes cars look like mobile phones but with a higher lifetime of 10-15 years. Together with OTA updates, this results in many more write cycles that might make the flash wear out before end of life of the car. Fragmentation is observed to have an impact on performance in mobile devices – and could simply break an automotive system. Issues like FCA’s endless loop update from 2018, or the Spotify bug from 2016 with writing 5 GB per hour to flash, puts further risk on future systems. This paper, by Bernd Niedermeier, describes those effects more in detail and suggests measures to mitigate the risks.
"*" indicates required fields